Also in BSD's pf there is such thing as synproxy state, which is very usable with mechanism of tables.
Dear all,
On Fri, Mar 09, 2012 at 08:46:15AM +0100, Shane Kerr wrote:
> Question to the room - does anyone have a similar technology that works
> with IPv6? AFAIK both denyhosts and fail2ban only work for IPv4. :(
We recently started using sshguard [1] that creates firewall (iptables)
rules for offending IPv4 and IPv6 addresses. It's included in Debian
(and probably other Linux distributions too).
[1] http://www.sshguard.net/
Regards,
j.
--
j.hofmüller http://users.mur.at/thesix/